@backstage/plugin-auth-backend

A Backstage backend plugin that handles authentication
Licenses: Apache-2.0

Direct Vulnerabilities

Known vulnerabilities in the @backstage/plugin-auth-backend package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Open Redirect

<0.27.1
  • M
Server-side Request Forgery (SSRF)

>=0.27.0 <0.27.1
  • H
Cross-site Scripting (XSS)

>=0.1.1-alpha.9 <0.4.9

Package versions

1908 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
0.29.2-next.17 Jul, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.29.2-next.023 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.29.116 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.29.1-next.026 May, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.29.019 May, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.28.1-next.212 May, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.28.1-next.128 Apr, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.28.1-next.021 Apr, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.28.014 Apr, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.28.0-next.27 Apr, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L